Exchange Server 2013 Outlook Anywhere Issue

I recently ran into an issue during an Exchange 2010 to 2013 migration where external users could not connect with Outlook externally. Both Exchange servers did not write any errors or warnings to the application logs and the latest service packs and cumulative updates were all applied. 

When I ran an Outlook Connectivity test on testexchangeconnectivity.com I would get the following error:

Attempting to ping RPC proxy .
RPC Proxy can’t be pinged.

Additional Details

An unexpected network-level exception was encountered. Exception details:
Message: The remote server returned an error: (500) Internal Server Error.
Type: Microsoft.Exchange.Tools.ExRca.Extensions.MapiTransportException
Stack trace:
at Microsoft.Exchange.Tools.ExRca.Extensions.MapiRpcTestClient.PingProtocolProxy(String endpointIdentifier)
at Microsoft.Exchange.Tools.ExRca.Tests.MapiPingProxyTest.PerformTestReally()
Exception details:
Message: The remote server returned an error: (500) Internal Server Error.
Type: System.Net.WebException
Stack trace:
at System.Net.HttpWebRequest.GetResponse()
at RpcPingLib.RpcPing.PingProxy(String internalServerFqdn, String endpoint)
at Microsoft.Exchange.Tools.ExRca.Extensions.MapiRpcTestClient.PingProtocolProxy(String endpointIdentifier)
Elapsed Time: 290 ms.

This eventually resulted in a ticket with Microsoft. Support was able to resolve the issue by doing the following:

  1. Ran this PowerShell command on the 2010 server to update the internal Autodiscover URI to point to the 2013 server:

    Set-ClientAccessServer -Identity -AutodiscoverServiceInternalUri https:///Autodiscover/Autodiscover.xml

  2. Changed the “Default AppPool” application pool (IIS) on the 2010 server to use the LocalSystem identity and recycled the app pool.

Hopefully this helps anyone else stuck on a migration.

Blank OWA and ECP Pages After Login On Exchange 2013

Recently I experienced an issue with a blank page loading after attempting to sign in to  the Enterprise Control Panel (ECP) and Outlook Web App (OWA) websites on an Exchange 2013 server. After troubleshooting I figured out that after updating the certificate and deleting the old expired cert IIS needed a manual change. I’m not certain if this is a bug in the script Exchange uses to update the certificates from the ECP, but it is easy enough to resolve manually.

  1. Login to the Exchange 2013 server and open Internet Information Services (IIS) Manager
  2. Expand your server name, then sites, right-click Exchange Back End, and choose “Edit Bindings…”
  3. Select the entry using port 444 and click the Edit… button
  4. Select the new SSL certificate in the SSL Certificate… drop-down. This drop-down was set to “Not Selected” in my instance. I simply changed it to the cert I had just installed in the ECP and everything worked fine.
  5. Click OK, then Close when finished. Feel free to do an IISRESET as well just to be thorough. I didn’t have to do this, but it never hurts after making changes in IIS.

Once I did that I was able to load OWA and the ECP again. This was a particularly tricky issue to figure out since I didn’t see any errors in the Application logs on the Exchange server. Hopefully this will help out anyone seeing the same issue.

How to generate a list of recently used distribution groups in Exchange Server

The following PowerShell commands will help you generate a list of distribution groups that have received mail in the last 30 days. The second command pulls data from the Exchange Tracking Logs which only keep 30 days worth of data by default.

Get all distribution lists:
Get-DistributionGroup | Select-Object PrimarySMTPAddress | Sort-Object PrimarySMTPAddress | Export-CSV DL-ALL.csv -notype

Get all distribution lists used over last 30 days:
Get-MessageTrackingLog -Server -EventId Expand -ResultSize Unlimited |Sort-Object RelatedRecipientAddress | Group-Object RelatedRecipientAddress |Sort-Object Name | Select-Object @{label=”PrimarySmtpAddress”;expression={$_.Name}}, Count | Export-CSV DL-Active.csv -notype

Compare preview two files and present list of inactive:
$file1 = Import-CSV -Path “DL-ALL.csv”
$file2 = Import-CSV -Path “DL-Active.csv”
Compare-Object $file1 $file2 -Property PrimarySmtpAddress -SyncWindow 500 |Sort-Object PrimarySmtpAddress | Select-Object -Property PrimarySmtpAddress |Export-Csv DL-Inactive.csv -NoType

How to: Disable Power Management and Sleep Features in Chrome OS

Chromebooks share the same power feature as any other laptop where closing the lid causes the unit goes to sleep. In some situations you may want to disable this (like if you have your Chromebook connected to an external monitor, mouse, and keyboard and don’t need/want the second display).

Before you start you will need to put your Chromebook into developer mode which will reset your device back to factory defaults. If you are unsure how to boot into developer mode check Google first or leave a comment.

Continue reading “How to: Disable Power Management and Sleep Features in Chrome OS” »

How to install a third-party SSL certificate for Subsonic 4.7

I have been using Subsonic for a couple years now and after getting sick of the SSL warnings you receive due to the default self-signed certificate I decided to purchase a third-party cert from a trusted CA.

The installation wasn’t well documented at all (for Linux anyways), so hopefully this will help anyone that is looking to do the installation themselves. In my setup I am running Ubuntu 12.04 LTS, but this should be adaptable for any Linux install with OpenSSL and ZIP installed.
Continue reading “How to install a third-party SSL certificate for Subsonic 4.7” »

How to: Set up an SMTP mail relay using Amazon Simple Email Service

Whether you need an SMTP server to relay mail for a particular application like WordPress, server monitoring software, a ticketing system, or even a copy machine Amazon has a service that is much easier to configure and use than setting up an SMTP server on a spare Windows or Linux box that you may have lying around. For a few cents a month you can use their highly reliable service to meet almost any mail relay need that you may run into.
Continue reading “How to: Set up an SMTP mail relay using Amazon Simple Email Service” »

How to: Setup and configure a Microsoft Key Management Service (KMS) Server

Microsoft offers multiple methods for activating Windows in a small to large sized business environment. While home users and businesses using retail or MAK keys activate their copies of Office and Windows directly with Microsoft (either online or by phone), businesses have the option to install the Volume Activation Management Console (VAMT) to activate from a remote system or set up a KMS host (essentially an activation server). The following guide is specifically for setting up and configuring a KMS server to allow client PCs to activate with KMS volume license keys. The major advantage of this method instead of using VAMT with MAK keys is that there is no maximum activation limit; therefore you do not need to call Microsoft when you activate 25 to 50 times to get the key re-validated. Microsoft recommends using KMS when you have at least 50 PCs in your environment and will not allow you to activate hosts until at least 25 PCs are requesting activation from your KMS server.

Continue reading “How to: Setup and configure a Microsoft Key Management Service (KMS) Server” »